Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

From: Casey Schaufler

Subject: Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel

Date: Saturday, August 11, 2007 - 6:36 pm

--- Andi Kleen <andi@firstfloor.org> wrote:

quoted text> Casey Schaufler <casey@schaufler-ca.com> writes:
> 
> > Smack is the Simplified Mandatory Access Control Kernel.
> 
> I like the simplified part.
> 
> > +static int smk_get_access(smack_t sub, smack_t obj)
> > +{
> > +	struct smk_list_entry *sp = smack_list;
> > +
> > +	for (; sp != NULL; sp = sp->smk_next)
> > +		if (sp->smk_rule.smk_subject == sub &&
> > +		    sp->smk_rule.smk_object == obj)
> > +			return sp->smk_rule.smk_access;
> 
> Do I miss something, or is there really no locking for the reader side
> of the list? That looks dangerous. Of course a global lock for readers 
> would be likely a scaling disaster. You could use RCU.

Entries are never deleted, although they can be modified.

quoted text> Or if you assume rules are changed only very infrequently it might
> be more cache friendly to compile all the rules into a linear buffer
> and then just replace the whole buffer atomically with a RCU
> grace period on cahnges.

Individual entries can be modified without changing the whole
thing, but they shouldn't change often.

quoted text> It doesn't look like it would scale to larger numbers of rules though.
> Is that intended? Would caching of decisions fit into the design?

I put some thought into clever schemes for supporting large rule sets
well but decided to go ahead with the simplest possible mechanism
because I expect that in real deployments the number of rules will
be small. In fact, experiance says that virtually all access choices
will be covered either by the subject==object case or the subject can
read floor case. Cacheing, hashing, and 2D structures are all
possibilties that I would be happy to entertain as enhancements.

quoted text> Also in general code style would need some improvements;
> e.g. no externs in .c; no ../.. include hacks etc.
> You also seem weak on the Documentation front.

Yes, it is pretty sparse.

quoted text> Other than that it looks reasonably clean (haven't read all of it)

Thank you for your comments. I think the next version will be improved.

Casey Schaufler
casey@schaufler-ca.com
-
unsubscribe noticeTo unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

[PATCH] Smack: Simplified Mandatory Access Control Kernel, Casey Schaufler, (Sat Aug 11, 10:57 am)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Arjan van de Ven, (Sat Aug 11, 12:12 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Kyle Moffett, (Sat Aug 11, 12:18 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Casey Schaufler, (Sat Aug 11, 12:56 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Jan Engelhardt, (Sat Aug 11, 1:26 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Casey Schaufler, (Sat Aug 11, 2:01 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Kyle Moffett, (Sat Aug 11, 2:47 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Andi Kleen, (Sat Aug 11, 4:14 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Casey Schaufler, (Sat Aug 11, 4:22 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Casey Schaufler, (Sat Aug 11, 6:21 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Casey Schaufler, (Sat Aug 11, 6:36 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel , Keith Owens, (Sat Aug 11, 8:39 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel , Keith Owens, (Sat Aug 11, 8:45 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Kyle Moffett, (Sat Aug 11, 9:32 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Jan Engelhardt, (Sun Aug 12, 4:16 am)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Andi Kleen, (Sun Aug 12, 4:49 am)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel , Casey Schaufler, (Sun Aug 12, 10:16 am)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Casey Schaufler, (Sun Aug 12, 10:48 am)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Casey Schaufler, (Sun Aug 12, 12:41 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Casey Schaufler, (Sun Aug 12, 12:50 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Andi Kleen, (Sun Aug 12, 2:36 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Casey Schaufler, (Sun Aug 12, 2:46 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Crispin Cowan, (Sun Aug 12, 4:18 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Kyle Moffett, (Sun Aug 12, 6:38 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Joshua Brindle, (Sun Aug 12, 7:36 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Kyle Moffett, (Sun Aug 12, 7:45 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Casey Schaufler, (Sun Aug 12, 9:23 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Pavel Machek, (Thu Aug 16, 1:58 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Casey Schaufler, (Thu Aug 16, 9:56 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Miguel Ojeda, (Fri Aug 17, 2:46 am)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Kyle Moffett, (Fri Aug 17, 10:29 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Valdis.Kletnieks, (Sun Aug 19, 2:12 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Casey Schaufler, (Mon Aug 20, 7:29 am)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Pavel Machek, (Tue Aug 21, 12:37 am)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Kyle Moffett, (Tue Aug 21, 6:16 am)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Casey Schaufler, (Tue Aug 21, 8:35 am)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Casey Schaufler, (Tue Aug 21, 8:50 am)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Kyle Moffett, (Tue Aug 21, 8:43 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Casey Schaufler, (Tue Aug 21, 9:08 pm)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Pavel Machek, (Wed Aug 22, 1:05 am)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Casey Schaufler, (Wed Aug 22, 11:47 am)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Jan Engelhardt, (Thu Aug 23, 12:14 am)

Re: [PATCH] Smack: Simplified Mandatory Access Control Kernel, Casey Schaufler, (Fri Sep 7, 9:02 am)


linux-kernel:
Greg Kroah-Hartman	[PATCH 041/196] kobject: add kobject_init_and_add function
Lukas Hejtmanek	Re: Another libata error related to OCZ SSD
Greg Kroah-Hartman	[PATCH 023/196] MCP_UCB1200: Convert from class_device to device
Florian Fainelli	Re: System clock runs too fast after 2.6.27 -> 2.6.28.1 upgrade
Christoph Lameter	[patch 1/4] mmu_notifier: Core code
git:
Johannes Schindelin	Re: [PATCH 1/2] Add strbuf_initf()
John Bito	[EGIT] Push to GitHub caused corruption
Jakub Narebski	Re: [PATCH 0/2] gitweb: patch view
Junio C Hamano	Re: [PATCH] When a remote is added but not fetched, tell the user.
Andy Parkins	Re: [RFC] Submodules in GIT
git-commits-head:
Linux Kernel Mailing List	ahci: Workaround HW bug for SB600/700 SATA controller PMP support
Linux Kernel Mailing List	V4L/DVB (11086): au0828: rename macro for currently non-function VBI support
Linux Kernel Mailing List	ceph: client types
Linux Kernel Mailing List	ceph: on-wire types
Linux Kernel Mailing List	crypto: chainiv - Use kcrypto_wq instead of keventd_wq
linux-netdev:
Andrew Morton	Re: [Bugme-new] [Bug 14969] New: b44: WOL does not work in suspended state
Giuseppe CAVALLARO	Re: [PATCH 03/13] stmmac: add the new Header file for stmmac platform data
Taku Izumi	[PATCH 3/3] ixgbe: add registers etc. printout code just before resetting adapters
Eric Dumazet	rps: some comments
Thomas Gleixner	Re: [RFC PATCH 02/12] On Tue, 23 Sep 2008, David Miller wrote:
openbsd-misc:
Stephan Andreas	problems with login after xlock in OpenBSD release 4.7
pmc	Make A Change. Alcoholism and Drug Addiction Treatment
ropers	Re: what exactly is enc0?
Fuad NAHDI	Re: What does your environment look like?
Matthew Szudzik	Typo on OpenBSD 4.4 CD Set